|
Alles rund um Windows: C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werdenWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
06.07.2014, 23:49 | #1 |
| Problem: C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Hallo, ich habe mir Secunia PSI runtergeladen und installiert. Am Ende der Installation wird gefragt, ob ich das Programm ausführen möchte, nach klick auf JA passiert nichts. Wenn ich dann per Explorer in den Programmordner gehe und auf die psi.exe doppelklicke kommt die Fehlermeldung: "C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden". Aber auf genau diese Datei hatte ich gerade geklickt. Das Programm habe ich zwischenzeitlich 2x deinstalliert / neu installiert. Ohne Änderung. Was hat das zu bedeuten?? mfg Wolfgang PS Ich gehe jetzt erstmal "Offline" und sehe mir Antworten Heute Mittag an. Vielen Dank im Voraus |
07.07.2014, 09:24 | #2 |
/// TB-Ausbilder | C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Anleitung / Hilfe Versuch erstmal, PSI neu zu installieren und wähle am Ende NEIN, wenn du gefragt wirst ob du PSI ausführen möchtest.
__________________Ich erinnere mich dunkel. das ich mal einen ähnlichen Bug hatte mit PSI. |
07.07.2014, 10:07 | #3 |
| C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Details Guten Morgen,
__________________das hat nichts genützt. mfg Wolfgang |
07.07.2014, 16:14 | #4 |
/// TB-Ausbilder | Lösung: C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Das Setup als Administrator ausgeführt ? |
07.07.2014, 20:31 | #5 |
| Wie C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Guten Abend, ja. Das gleiche Problem habe ich gerade mit einem weiteren Programm: Driver Booster von IObit. Ich habe schon länger Advanced System Care (ASC) auf dem NB. Aus diesem Programm heraus habe ich Driver Booster installiert. Von dort kann man es "eigentlich" auch starten, keine Reaktion, Doppelklick auf das Desktop-Symbol, keine Reaktion, Doppelklick auf die .Exe-Datei im Programmordner: gleiche Fehlermeldung wie bei psi.exe Habe ich evtl. ein größeres Problem? mfg Wolfgang |
08.07.2014, 07:51 | #6 |
/// TB-Ausbilder | Wo C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Lösung! Dann mach doch mal grad nen FRST: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
|
08.07.2014, 17:40 | #7 |
| C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Hallo, hier die Logs: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01 Ran by Administrator (administrator) on WOHER-THINK on 08-07-2014 18:15:13 Running from D:\Downloads Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Lenovo.) C:\Windows\System32\ibmpmsvc.exe (SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe (Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\sched.exe (Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\avguard.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe () C:\Users\Administrator\AppData\LocalLow\WOT\IE\WOTUpdater.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe (Avira Operations GmbH & Co. KG) C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\avshadow.exe (Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe (Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe (IObit) C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\Monitor.exe (Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe (Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\TpScrex.exe (Lenovo.) C:\Windows\System32\TpShocks.exe () C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe (IObit) C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\ASCTray.exe (Avira Operations GmbH & Co. KG) C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\avgnt.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Microsoft Corporation) C:\Windows\System32\alg.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Marek Jasinski) D:\007 portable Progr\FreeCommanderXE\FreeCommander.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [380776 2009-12-11] (Lenovo.) HKLM\...\Run: [Message Center Plus] => c:\program files (x86)\lenovo\message center plus\mcplaunch.exe [49976 2009-05-28] () HKLM\...\Run: [SunJavaUpdateSched] => c:\program files (x86)\common files\java\java update\jusched.exe [256896 2014-05-07] (Oracle Corporation) HKLM\...\Run: [PSQLLauncher] => c:\program files\thinkvantage fingerprint software\launcher.exe [86312 2013-03-05] (Authentec Inc.) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111928 2013-05-03] (Intel Corporation) HKLM-x32\...\Run: [avgnt] => C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\avgnt.exe [750160 2014-07-03] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.) HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-13] (Microsoft Corporation) HKU\S-1-5-21-3635339573-733862797-1569816693-500\...\Run: [Advanced SystemCare 7] => C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\ASCTray.exe [2295584 2014-04-21] (IObit) HKU\S-1-5-21-3635339573-733862797-1569816693-500\...\Policies\Explorer: [DisallowRun] 1 IFEO\bak.IMF.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\bak.IMFsrv.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\BlueBirdInit.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\DriverBooster.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\Driver_Booster_FreeSoftwareDownloader.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\FixPlugin.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\IMF.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\IMFsrv.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\IMF_ActionCenterDownloader.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\IObitDownloader.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\IWsIMF.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\MakeSFX.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\psi.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\psia.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\psi_tray.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\Scheduler.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\SendBugReport.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\SetupHlp.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\SkipUacTask.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\sua.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\TaskSchedule.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\UpdateDB.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\Windows8FirewallControl.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\AutoReactivator.exe IFEO\Windows8FirewallService.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\AutoReactivator.exe Lsa: [Notification Packages] scecli ACGina C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com SearchScopes: HKLM - DefaultScope {D37FC2A7-FACD-421E-B221-2C9C3D393A44} URL = hxxp://www.sm.de/?q={searchTerms} SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM - {D37FC2A7-FACD-421E-B221-2C9C3D393A44} URL = hxxp://www.sm.de/?q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope value is missing. SearchScopes: HKCU - {D37FC2A7-FACD-421E-B221-2C9C3D393A44} URL = hxxp://www.sm.de/?q={searchTerms} BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{04BB58C3-5E85-4B47-9999-940B31C9CEF0}: [NameServer]212.23.115.150 212.23.115.84 FireFox: ======== FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default FF DefaultSearchEngine: SuchMaschine FF SearchEngineOrder.1: SuchMaschine FF SelectedSearchEngine: SuchMaschine FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll () FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf - C:\Program Files\03 ProgrNEU\PDF Editor\npPDFXEditPlugin.x86.dll (Tracker Software Products (Canada) Ltd.) FF Extension: Amazon-Icon - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\Extensions\amazon-icon@giga.de [2014-06-27] FF Extension: WOT - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\Extensions\wotstats@mywot.com [2014-07-07] FF Extension: DownloadHelper - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-05-23] FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-05-23] Chrome: ======= CHR HomePage: event.vodafone.de CHR StartupUrls: "https://www.google.com/intl/de/chrome/browser/welcome.html" CHR DefaultNewTabURL: CHR Extension: (Google Docs) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-16] CHR Extension: (Google Drive) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-16] CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd [2014-06-17] CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-16] CHR Extension: (Google-Suche) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-16] CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-05-16] CHR Extension: (Google Wallet) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-16] CHR Extension: (Google Mail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-16] CHR HKLM-x32\...\Chrome\Extension: [nphjeokkkbngjpiofnfpnafjeofjomfb] - C:\Users\Administrator\AppData\LocalLow\WOT\CHROME\WOT.crx [2012-01-12] ==================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\sched.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\03 ProgrNEU\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG) S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320560 2014-06-24] (Lenovo.) R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1876816 2014-05-22] (SurfRight B.V.) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [546560 2014-06-19] (Lenovo) S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-06-17] (IObit) R2 QDLService2kLenovo; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe [1688384 2011-05-23] (QUALCOMM, Inc.) S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP2a\RpcAgentSrv.exe [72344 2008-05-19] (SiSoftware) [File not signed] S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [24560 2014-04-24] () S4 Windows8FirewallService; C:\Program Files\Windows8FirewallControl\Windows8FirewallService.exe [3806720 2013-09-30] (Sphinx Software) [File not signed] R2 WOTUpdater; C:\Users\Administrator\AppData\LocalLow\WOT\IE\WOTUpdater.exe [18432 2012-01-12] () [File not signed] ==================== Drivers (Whitelisted) ==================== R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-04-10] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-04-10] (Avira Operations GmbH & Co. KG) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () R2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [93144 2014-05-22] () R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2014-06-04] (Intel Corporation) S4 IObitUnlocker; No ImagePath S3 PCDSRVC{127174DC-C366ED8B-06000000}_0; No ImagePath R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [39504 2013-04-03] (IObit Information Technology) R3 qcfilterlno2k; C:\Windows\System32\DRIVERS\qcfilterlno2k.sys [6400 2009-12-08] (QUALCOMM Incorporated) R3 qcusbnetlno2k; C:\Windows\System32\DRIVERS\qcusbnetlno2k.sys [444416 2011-05-23] (QUALCOMM Incorporated) R3 qcusbserlno2k; C:\Windows\System32\DRIVERS\qcusbserlno2k.sys [231040 2011-05-23] (QUALCOMM Incorporated) R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [768680 2013-06-26] (Microsoft Corporation) R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2013-06-26] (Microsoft Corporation) R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29352 2013-06-26] (Microsoft Corporation) R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2013-06-26] (Microsoft Corporation) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2013-11-15] (Synaptics Incorporated) R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.) S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2014-06-04] (BitDefender S.R.L.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [12728 2009-09-30] () R3 TVTI2C; C:\Windows\System32\DRIVERS\Tvti2c.sys [41536 2009-09-24] (Lenovo (United States) Inc.) R1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2014-05-19] () R1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2014-05-19] () R1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700296 2014-05-19] () S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-03-15] (Paragon) S3 WinRing0_1_2_0; No ImagePath ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-07-08 18:15 - 2014-07-08 18:15 - 00000000 ____D () C:\FRST 2014-07-08 18:01 - 2014-07-08 18:01 - 00000633 _____ () C:\Users\Administrator\Desktop\JRT.txt 2014-07-08 17:50 - 2014-04-06 08:36 - 01016261 _____ (Thisisu) C:\Users\Administrator\Desktop\JRT_NEW.exe 2014-07-08 17:30 - 2014-07-08 17:33 - 00000000 ____D () C:\AdwCleaner 2014-07-08 17:29 - 2014-07-08 17:29 - 01346519 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214.exe 2014-07-08 16:55 - 2014-07-08 16:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-08 16:55 - 2014-07-08 16:55 - 00001136 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-08 16:55 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-07-08 16:55 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-07-08 16:55 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-07-08 08:17 - 2014-07-08 17:34 - 00033878 _____ () C:\Windows\PFRO.log 2014-07-08 08:17 - 2014-07-08 17:34 - 00000224 _____ () C:\Windows\setupact.log 2014-07-08 08:17 - 2014-07-08 08:17 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-07 21:44 - 2014-07-07 21:45 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\HUMAX PR-HD1000C user guide 2014-07-07 20:38 - 2014-07-07 20:38 - 00001218 _____ () C:\Users\Public\Desktop\Lenovo SHAREit.lnk 2014-07-07 20:24 - 2014-07-07 21:16 - 00001196 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-07-07 15:51 - 2014-07-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows8FirewallControl 2014-07-07 15:51 - 2014-07-07 15:51 - 00000000 ____D () C:\Program Files\Windows8FirewallControl 2014-07-07 15:47 - 2014-07-07 15:49 - 00000000 ____D () C:\Program Files\Firewall Control 2014-07-07 15:24 - 2014-07-07 15:24 - 00001783 _____ () C:\Users\Administrator\Desktop\CCEnhancer - Verknüpfung.lnk 2014-07-07 14:39 - 2014-07-07 14:39 - 00002236 _____ () C:\Users\Public\Desktop\Google Earth.lnk 2014-07-07 14:39 - 2014-07-07 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2014-07-07 14:01 - 2014-07-07 14:01 - 00001010 _____ () C:\Users\Public\Desktop\UpdateYeti.lnk 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Abelssoft 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\ProgramData\XDMessagingv4 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateYeti 2014-07-07 12:43 - 2014-07-07 12:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag 2014-07-03 19:09 - 2014-07-07 00:50 - 00011150 _____ () C:\Users\Administrator\Desktop\KeePassDatenbank.kdbx 2014-06-28 00:53 - 2014-07-07 19:04 - 00311952 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-28 00:45 - 2014-06-28 00:45 - 00000962 _____ () C:\Users\Administrator\Desktop\WSCC.lnk 2014-06-28 00:44 - 2014-06-28 00:44 - 00000962 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSCC.lnk 2014-06-28 00:00 - 2014-07-07 14:35 - 00070368 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT 2014-06-27 23:24 - 2014-06-27 23:24 - 72073216 _____ () C:\Windows\system32\config\COMPONENTS.iobit 2014-06-27 23:10 - 2014-07-07 10:59 - 00000000 ____D () C:\Program Files\ThinkVantage Fingerprint Software 2014-06-27 23:10 - 2014-06-27 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ThinkVantage 2014-06-27 23:10 - 2014-06-27 23:10 - 00000000 ____D () C:\Program Files\Common Files\SPBA 2014-06-27 23:00 - 2014-06-27 23:00 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\TuneUp Software 2014-06-27 23:00 - 2014-06-27 23:00 - 00000000 ____D () C:\Users\Administrator\AppData\Local\TuneUp Software 2014-06-27 22:59 - 2014-06-27 23:36 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-06-27 22:59 - 2014-06-27 23:19 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-06-27 22:58 - 2014-06-27 22:58 - 00001938 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk 2014-06-27 22:58 - 2014-06-27 22:58 - 00001888 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2014-06-27 22:54 - 2014-06-27 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Tempe64bee8277429c77b0ec29bd46d5f0c6 2014-06-27 21:46 - 2014-06-27 21:46 - 00001793 _____ () C:\Users\Administrator\Desktop\X-SetUp Pro.lnk 2014-06-27 21:22 - 2014-06-27 21:22 - 00002723 _____ () C:\Users\Administrator\Desktop\Microsoft Office PowerPoint 2007.lnk 2014-06-27 21:22 - 2014-06-27 21:22 - 00002697 _____ () C:\Users\Administrator\Desktop\Microsoft Office Word 2007.lnk 2014-06-27 21:21 - 2014-06-27 21:21 - 00001304 _____ () C:\Users\Administrator\Desktop\Notepad.lnk 2014-06-26 15:38 - 2014-06-26 15:38 - 00001223 _____ () C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.SP2a.lnk 2014-06-26 15:38 - 2014-06-26 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware 2014-06-26 15:38 - 2014-06-26 15:38 - 00000000 ____D () C:\Program Files\SiSoftware 2014-06-26 15:38 - 2014-04-25 11:06 - 14155776 _____ () C:\Users\Administrator\AppData\Roaming\Sandra.mdb 2014-06-26 15:26 - 2014-06-26 15:26 - 00001496 _____ () C:\Users\Administrator\Desktop\amazon.de.lnk 2014-06-26 15:26 - 2014-06-26 15:26 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\DesktopIconAmazon 2014-06-25 23:21 - 2014-06-25 23:21 - 00000116 _____ () C:\Windows\i 2014-06-25 22:47 - 2014-06-25 22:47 - 00000116 _____ () C:\Windows\C 2014-06-25 21:58 - 2014-07-07 12:42 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mp3tag 2014-06-25 21:48 - 2014-07-07 12:43 - 00000954 _____ () C:\Users\Public\Desktop\Mp3tag.lnk 2014-06-24 01:22 - 2014-06-24 01:39 - 00002086 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk 2014-06-23 15:44 - 2014-06-23 15:41 - 01107968 _____ () C:\Users\Administrator\Desktop\RSIT.exe 2014-06-23 15:33 - 2014-06-23 15:34 - 00000000 ____D () C:\Users\Administrator\AppData\Local\DesktopEarth 2014-06-23 15:33 - 2014-06-23 15:33 - 00002307 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DesktopEarth.lnk 2014-06-23 15:33 - 2014-06-23 15:33 - 00000000 ____D () C:\Program Files (x86)\03 ProgrNEU 2014-06-23 02:07 - 2014-06-23 02:08 - 00000000 ____D () C:\Program Files\09 FreeFileSync 2014-06-21 00:12 - 2014-06-21 00:12 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\BatteryBar 2014-06-20 23:30 - 2014-07-07 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2014-06-17 18:23 - 2014-06-24 01:34 - 00000000 ____D () C:\Windows\Minidump 2014-06-17 15:38 - 2012-07-14 18:48 - 00255312 _____ () C:\Users\Administrator\AppData\Local\wanancsp.dat 2014-06-17 14:40 - 2014-06-17 14:40 - 00000000 ____D () C:\ProgramData\Razer 2014-06-17 12:12 - 2014-06-17 12:12 - 00003176 _____ () C:\Windows\System32\Tasks\Game_Booster_AutoUpdate 2014-06-17 09:10 - 2014-06-17 09:10 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer 2014-06-17 07:58 - 2014-06-17 07:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData 2014-06-17 07:57 - 2014-06-17 07:57 - 00001131 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk 2014-06-16 01:07 - 2011-03-05 21:54 - 00690688 _____ (www.rene-zeidler.de) C:\Users\Administrator\Desktop\Snipping Tool Plus.exe 2014-06-15 22:17 - 2014-07-08 17:16 - 00000000 ____D () C:\Windows\rescache 2014-06-15 20:47 - 2014-06-24 01:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CheckDrive 2014-06-15 20:47 - 2014-06-15 20:47 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft 2014-06-15 19:18 - 2014-06-17 12:20 - 94781410 _____ () C:\Users\Administrator\Desktop\ASC_Portable.zip 2014-06-15 19:17 - 2014-06-15 19:17 - 00001236 _____ () C:\Users\Public\Desktop\Protected Folder.lnk 2014-06-15 19:17 - 2014-06-15 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder 2014-06-15 19:10 - 2014-07-07 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2014-06-15 18:50 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-15 18:50 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-06-15 18:50 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-06-15 18:50 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-15 18:50 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-06-15 18:50 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-06-15 18:50 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-15 18:50 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-06-15 18:50 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-06-15 18:50 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-06-15 18:49 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-15 18:49 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-15 18:49 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-15 18:49 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-15 18:49 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-15 18:49 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-15 18:49 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-15 18:49 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-15 18:49 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-06-15 18:49 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-15 18:49 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-15 18:49 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-15 18:49 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-06-15 18:49 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-15 18:49 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-15 18:49 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-06-15 18:49 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-15 18:49 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-15 18:49 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-06-15 18:49 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-15 18:49 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-06-15 18:49 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-06-15 18:49 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-15 18:49 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-06-15 18:49 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-06-15 18:49 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-06-15 18:49 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-15 18:49 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-06-15 18:49 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-06-15 18:49 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-15 18:49 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-06-15 18:49 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-06-15 18:49 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-06-15 18:49 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-15 18:49 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-15 18:49 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-06-15 18:49 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-15 18:49 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-06-15 18:49 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-15 18:49 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-06-15 18:49 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-15 18:49 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-06-15 18:46 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-15 18:46 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-15 18:46 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-15 18:46 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-15 18:46 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2014-06-15 18:46 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-06-15 18:46 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2014-06-15 18:46 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-06-15 18:46 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2014-06-15 18:46 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-06-15 18:45 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-15 18:45 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-06-15 18:45 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-15 18:45 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2014-06-13 17:51 - 2011-05-23 15:33 - 00142848 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.ax 2014-06-13 17:51 - 2011-05-23 15:33 - 00126976 _____ (Ricoh co.,Ltd.) C:\Windows\SysWOW64\5U877.ax 2014-06-12 01:19 - 2014-06-12 01:19 - 00000000 ____D () C:\ProgramData\managecapsule 2014-06-12 00:41 - 2014-06-12 00:41 - 00000000 ____D () C:\ProgramData\newbackup 2014-06-12 00:20 - 2014-06-12 00:20 - 00000000 ____D () C:\Users\Administrator\Desktop\MS FIX-IT-Paket 2014-06-12 00:19 - 2009-11-20 17:31 - 00286720 _____ (Big Daddy Design) C:\Users\Administrator\Desktop\Windows 7 in a Box.exe 2014-06-11 23:53 - 2014-06-24 01:22 - 00002870 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Administrator 2014-06-11 23:53 - 2014-06-24 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7 2014-06-11 21:05 - 2014-06-12 00:30 - 00000000 ____D () C:\Users\Administrator\dwhelper 2014-06-09 23:47 - 2014-06-09 23:47 - 00000000 ____D () C:\Users\Public\Foxit Software 2014-06-09 23:46 - 2014-06-09 23:47 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Foxit Software 2014-06-09 23:31 - 2014-06-09 23:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_blockmounter_01_09_00.Wdf 2014-06-09 23:23 - 2014-06-12 00:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Downloaded Installations 2014-06-09 19:55 - 2014-06-09 19:57 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ATViewer 2014-06-09 19:55 - 2014-06-09 19:55 - 00001027 _____ () C:\Users\Public\Desktop\Universal Viewer.lnk 2014-06-09 19:55 - 2014-06-09 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Viewer 2014-06-09 19:36 - 2014-06-09 19:36 - 00001261 _____ () C:\Users\Public\Desktop\EaseUS Partition Master 10.0.lnk 2014-06-09 19:36 - 2014-06-09 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.0 2014-06-09 19:36 - 2014-04-04 00:42 - 03382440 _____ () C:\Windows\system32\BootMan.exe 2014-06-09 19:36 - 2014-04-04 00:25 - 02499752 _____ () C:\Windows\SysWOW64\BootMan.exe 2014-06-09 19:36 - 2013-03-07 09:49 - 00100936 _____ () C:\Windows\system32\setupempdrvx64.exe 2014-06-09 19:36 - 2013-03-07 09:49 - 00087112 _____ () C:\Windows\SysWOW64\setupempdrv03.exe 2014-06-09 19:36 - 2013-03-07 09:49 - 00019840 _____ () C:\Windows\SysWOW64\EuEpmGdi.dll 2014-06-09 19:36 - 2013-03-07 09:49 - 00017480 _____ () C:\Windows\system32\epmntdrv.sys 2014-06-09 19:36 - 2013-03-07 09:49 - 00016256 _____ () C:\Windows\system32\EuEpmGdi.dll 2014-06-09 19:36 - 2013-03-07 09:49 - 00013896 _____ () C:\Windows\SysWOW64\epmntdrv.sys 2014-06-09 19:36 - 2013-03-07 09:49 - 00009800 _____ () C:\Windows\system32\EuGdiDrv.sys 2014-06-09 19:36 - 2013-03-07 09:49 - 00009160 _____ () C:\Windows\SysWOW64\EuGdiDrv.sys ==================== One Month Modified Files and Folders ======= 2014-07-08 18:15 - 2014-07-08 18:15 - 00000000 ____D () C:\FRST 2014-07-08 18:11 - 2014-05-13 02:01 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-07-08 18:01 - 2014-07-08 18:01 - 00000633 _____ () C:\Users\Administrator\Desktop\JRT.txt 2014-07-08 17:42 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-07-08 17:42 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-07-08 17:40 - 2013-11-01 22:30 - 00699370 _____ () C:\Windows\system32\perfh007.dat 2014-07-08 17:40 - 2013-11-01 22:30 - 00149220 _____ () C:\Windows\system32\perfc007.dat 2014-07-08 17:40 - 2009-07-14 07:13 - 01619832 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-07-08 17:39 - 2014-06-05 19:43 - 00000504 _____ () C:\Windows\system32\Drivers\etc\hosts.ics 2014-07-08 17:39 - 2013-11-01 22:02 - 01318713 _____ () C:\Windows\WindowsUpdate.log 2014-07-08 17:36 - 2014-05-13 02:01 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-07-08 17:34 - 2014-07-08 08:17 - 00033878 _____ () C:\Windows\PFRO.log 2014-07-08 17:34 - 2014-07-08 08:17 - 00000224 _____ () C:\Windows\setupact.log 2014-07-08 17:34 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-07-08 17:33 - 2014-07-08 17:30 - 00000000 ____D () C:\AdwCleaner 2014-07-08 17:29 - 2014-07-08 17:29 - 01346519 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214.exe 2014-07-08 17:16 - 2014-06-15 22:17 - 00000000 ____D () C:\Windows\rescache 2014-07-08 16:56 - 2014-07-08 16:55 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-08 16:55 - 2014-07-08 16:55 - 00001136 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-08 16:55 - 2014-07-08 16:55 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-08 14:18 - 2014-05-15 01:07 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-07-08 08:17 - 2014-07-08 08:17 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-07 21:45 - 2014-07-07 21:44 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\HUMAX PR-HD1000C user guide 2014-07-07 21:18 - 2014-05-16 20:30 - 00003110 _____ () C:\Windows\System32\Tasks\ASC7_PerformanceMonitor 2014-07-07 21:16 - 2014-07-07 20:24 - 00001196 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-07-07 21:16 - 2014-06-15 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2014-07-07 20:38 - 2014-07-07 20:38 - 00001218 _____ () C:\Users\Public\Desktop\Lenovo SHAREit.lnk 2014-07-07 20:38 - 2014-06-20 23:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2014-07-07 20:33 - 2014-05-28 23:45 - 00004760 _____ () C:\Users\Administrator\Desktop\DesktopOK.ini 2014-07-07 20:07 - 2013-11-01 21:54 - 00000000 ____D () C:\Program Files (x86)\Lenovo 2014-07-07 20:06 - 2013-11-01 22:00 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools 2014-07-07 20:05 - 2014-05-13 00:22 - 00000000 ____D () C:\Program Files\03 ProgrNEU 2014-07-07 19:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-07-07 19:30 - 2014-05-16 18:55 - 00000000 ____D () C:\Users\Administrator 2014-07-07 19:04 - 2014-06-28 00:53 - 00311952 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-07-07 15:51 - 2014-07-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows8FirewallControl 2014-07-07 15:51 - 2014-07-07 15:51 - 00000000 ____D () C:\Program Files\Windows8FirewallControl 2014-07-07 15:49 - 2014-07-07 15:47 - 00000000 ____D () C:\Program Files\Firewall Control 2014-07-07 15:25 - 2014-05-14 01:59 - 00002788 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-07-07 15:25 - 2014-05-14 01:59 - 00000840 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-07 15:25 - 2014-05-14 01:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-07-07 15:25 - 2014-05-14 01:59 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-07 15:24 - 2014-07-07 15:24 - 00001783 _____ () C:\Users\Administrator\Desktop\CCEnhancer - Verknüpfung.lnk 2014-07-07 14:39 - 2014-07-07 14:39 - 00002236 _____ () C:\Users\Public\Desktop\Google Earth.lnk 2014-07-07 14:39 - 2014-07-07 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2014-07-07 14:39 - 2014-05-16 19:01 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google 2014-07-07 14:39 - 2014-05-13 02:01 - 00000000 ____D () C:\Program Files (x86)\Google 2014-07-07 14:35 - 2014-06-28 00:00 - 00070368 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-07 14:19 - 2014-05-21 18:08 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\vlc 2014-07-07 14:01 - 2014-07-07 14:01 - 00001010 _____ () C:\Users\Public\Desktop\UpdateYeti.lnk 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Abelssoft 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\ProgramData\XDMessagingv4 2014-07-07 14:01 - 2014-07-07 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateYeti 2014-07-07 14:01 - 2014-06-04 20:13 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Abelssoft 2014-07-07 12:43 - 2014-07-07 12:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag 2014-07-07 12:43 - 2014-06-25 21:48 - 00000954 _____ () C:\Users\Public\Desktop\Mp3tag.lnk 2014-07-07 12:42 - 2014-06-25 21:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mp3tag 2014-07-07 10:59 - 2014-06-27 23:10 - 00000000 ____D () C:\Program Files\ThinkVantage Fingerprint Software 2014-07-07 00:50 - 2014-07-03 19:09 - 00011150 _____ () C:\Users\Administrator\Desktop\KeePassDatenbank.kdbx 2014-07-07 00:50 - 2014-05-21 18:22 - 00000630 _____ () C:\Users\Administrator\Desktop\sysexporter.cfg 2014-07-06 21:48 - 2014-05-13 23:18 - 00000000 ____D () C:\ProgramData\ProductData 2014-07-06 21:45 - 2013-11-01 21:58 - 00003020 _____ () C:\Windows\System32\Tasks\PMTask 2014-07-06 21:45 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media 2014-07-03 19:15 - 2014-05-13 18:28 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2014-07-03 19:08 - 2014-06-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\KeePass 2014-06-30 17:39 - 2014-05-21 18:26 - 00007597 _____ () C:\Users\Administrator\AppData\Local\resmon.resmoncfg 2014-06-30 17:02 - 2014-05-25 16:22 - 64499712 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2014-06-30 17:02 - 2014-05-25 16:22 - 01007616 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak 2014-06-30 17:02 - 2014-05-25 16:22 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak 2014-06-30 17:02 - 2014-05-25 16:22 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak 2014-06-28 00:45 - 2014-06-28 00:45 - 00000962 _____ () C:\Users\Administrator\Desktop\WSCC.lnk 2014-06-28 00:44 - 2014-06-28 00:44 - 00000962 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSCC.lnk 2014-06-28 00:20 - 2014-05-23 23:48 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\DVDVideoSoft 2014-06-28 00:06 - 2014-05-21 20:12 - 00000000 ____D () C:\ProgramData\Canneverbe Limited 2014-06-28 00:01 - 2014-06-04 21:28 - 00002870 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Administrator) 2014-06-28 00:01 - 2014-05-13 02:01 - 00004114 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-06-28 00:01 - 2014-05-13 02:01 - 00003862 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-06-28 00:00 - 2014-05-13 23:18 - 00002902 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator 2014-06-27 23:36 - 2014-06-27 22:59 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-06-27 23:24 - 2014-06-27 23:24 - 72073216 _____ () C:\Windows\system32\config\COMPONENTS.iobit 2014-06-27 23:19 - 2014-06-27 22:59 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-06-27 23:10 - 2014-06-27 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ThinkVantage 2014-06-27 23:10 - 2014-06-27 23:10 - 00000000 ____D () C:\Program Files\Common Files\SPBA 2014-06-27 23:00 - 2014-06-27 23:00 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\TuneUp Software 2014-06-27 23:00 - 2014-06-27 23:00 - 00000000 ____D () C:\Users\Administrator\AppData\Local\TuneUp Software 2014-06-27 23:00 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar 2014-06-27 22:58 - 2014-06-27 22:58 - 00001938 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk 2014-06-27 22:58 - 2014-06-27 22:58 - 00001888 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2014-06-27 22:58 - 2014-05-21 20:12 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Canneverbe Limited 2014-06-27 22:54 - 2014-06-27 22:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Tempe64bee8277429c77b0ec29bd46d5f0c6 2014-06-27 21:46 - 2014-06-27 21:46 - 00001793 _____ () C:\Users\Administrator\Desktop\X-SetUp Pro.lnk 2014-06-27 21:37 - 2013-11-01 21:54 - 00000000 ____D () C:\Program Files\Lenovo 2014-06-27 21:22 - 2014-06-27 21:22 - 00002723 _____ () C:\Users\Administrator\Desktop\Microsoft Office PowerPoint 2007.lnk 2014-06-27 21:22 - 2014-06-27 21:22 - 00002697 _____ () C:\Users\Administrator\Desktop\Microsoft Office Word 2007.lnk 2014-06-27 21:21 - 2014-06-27 21:21 - 00001304 _____ () C:\Users\Administrator\Desktop\Notepad.lnk 2014-06-26 16:41 - 2014-06-04 16:44 - 00000000 ____D () C:\ProgramData\MicroWorld 2014-06-26 16:40 - 2013-11-01 22:03 - 00000000 ____D () C:\ProgramData\Lenovo 2014-06-26 16:10 - 2014-05-13 23:18 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-06-26 15:38 - 2014-06-26 15:38 - 00001223 _____ () C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.SP2a.lnk 2014-06-26 15:38 - 2014-06-26 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware 2014-06-26 15:38 - 2014-06-26 15:38 - 00000000 ____D () C:\Program Files\SiSoftware 2014-06-26 15:26 - 2014-06-26 15:26 - 00001496 _____ () C:\Users\Administrator\Desktop\amazon.de.lnk 2014-06-26 15:26 - 2014-06-26 15:26 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\DesktopIconAmazon 2014-06-25 23:21 - 2014-06-25 23:21 - 00000116 _____ () C:\Windows\i 2014-06-25 22:47 - 2014-06-25 22:47 - 00000116 _____ () C:\Windows\C 2014-06-25 21:54 - 2014-05-21 20:34 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert 2014-06-25 19:48 - 2014-05-25 16:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-06-24 06:05 - 2013-11-01 21:57 - 02853664 _____ (Lenovo Group Limited) C:\Windows\system32\PWMCP64V.cpl 2014-06-24 06:05 - 2013-11-01 21:57 - 02692896 ____N (Lenovo Group Limited) C:\Windows\PWMBTHLV.EXE 2014-06-24 06:05 - 2013-11-01 21:57 - 00029512 _____ (Lenovo.) C:\Windows\system32\Drivers\DZHDD64.SYS 2014-06-24 06:05 - 2013-11-01 21:57 - 00020736 _____ (Lenovo Group Limited) C:\Windows\system32\Drivers\TPPWR64V.SYS 2014-06-24 01:39 - 2014-06-24 01:22 - 00002086 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk 2014-06-24 01:39 - 2014-06-15 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CheckDrive 2014-06-24 01:39 - 2014-05-21 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2014-06-24 01:34 - 2014-06-17 18:23 - 00000000 ____D () C:\Windows\Minidump 2014-06-24 01:22 - 2014-06-11 23:53 - 00002870 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Administrator 2014-06-24 01:22 - 2014-06-11 23:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7 2014-06-23 16:37 - 2014-06-05 17:15 - 00000000 ____D () C:\swshare 2014-06-23 16:04 - 2014-05-16 18:56 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Lenovo 2014-06-23 15:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help 2014-06-23 15:41 - 2014-06-23 15:44 - 01107968 _____ () C:\Users\Administrator\Desktop\RSIT.exe 2014-06-23 15:38 - 2014-05-13 00:37 - 00000000 ____D () C:\Windows\System32\Tasks\Lenovo 2014-06-23 15:38 - 2013-11-01 22:07 - 00000000 ____D () C:\Windows\Downloaded Installations 2014-06-23 15:34 - 2014-06-23 15:33 - 00000000 ____D () C:\Users\Administrator\AppData\Local\DesktopEarth 2014-06-23 15:33 - 2014-06-23 15:33 - 00002307 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DesktopEarth.lnk 2014-06-23 15:33 - 2014-06-23 15:33 - 00000000 ____D () C:\Program Files (x86)\03 ProgrNEU 2014-06-23 02:08 - 2014-06-23 02:07 - 00000000 ____D () C:\Program Files\09 FreeFileSync 2014-06-21 00:12 - 2014-06-21 00:12 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\BatteryBar 2014-06-20 23:31 - 2014-05-13 00:37 - 00000000 ____D () C:\Windows\System32\Tasks\TVT 2014-06-19 09:52 - 2009-07-14 07:08 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-06-17 14:40 - 2014-06-17 14:40 - 00000000 ____D () C:\ProgramData\Razer 2014-06-17 14:40 - 2014-05-13 23:18 - 00000000 ____D () C:\ProgramData\IObit 2014-06-17 12:20 - 2014-06-15 19:18 - 94781410 _____ () C:\Users\Administrator\Desktop\ASC_Portable.zip 2014-06-17 12:20 - 2014-05-16 18:55 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\IObit 2014-06-17 12:12 - 2014-06-17 12:12 - 00003176 _____ () C:\Windows\System32\Tasks\Game_Booster_AutoUpdate 2014-06-17 09:10 - 2014-06-17 09:10 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer 2014-06-17 07:58 - 2014-06-17 07:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData 2014-06-17 07:57 - 2014-06-17 07:57 - 00001131 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk 2014-06-17 07:57 - 2014-05-13 23:18 - 00001107 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk 2014-06-15 20:47 - 2014-06-15 20:47 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft 2014-06-15 20:26 - 2014-05-13 18:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-06-15 19:17 - 2014-06-15 19:17 - 00001236 _____ () C:\Users\Public\Desktop\Protected Folder.lnk 2014-06-15 19:17 - 2014-06-15 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder 2014-06-15 18:56 - 2014-05-13 01:21 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-15 18:54 - 2014-05-25 16:27 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-06-15 18:54 - 2014-05-13 01:21 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-13 17:55 - 2009-07-24 19:28 - 00000000 ____D () C:\SWTOOLS 2014-06-13 17:51 - 2014-05-13 01:00 - 00000000 ____D () C:\Program Files (x86)\Integrated Camera Driver 2014-06-12 09:48 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2014-06-12 01:19 - 2014-06-12 01:19 - 00000000 ____D () C:\ProgramData\managecapsule 2014-06-12 00:41 - 2014-06-12 00:41 - 00000000 ____D () C:\ProgramData\newbackup 2014-06-12 00:35 - 2014-05-30 21:44 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-06-12 00:30 - 2014-06-11 21:05 - 00000000 ____D () C:\Users\Administrator\dwhelper 2014-06-12 00:20 - 2014-06-12 00:20 - 00000000 ____D () C:\Users\Administrator\Desktop\MS FIX-IT-Paket 2014-06-12 00:09 - 2014-06-09 23:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Downloaded Installations 2014-06-11 23:28 - 2014-06-05 16:28 - 00000000 ____D () C:\Users\Administrator\AppData\Local\GPSEnabler 2014-06-11 22:55 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries 2014-06-11 20:00 - 2014-05-16 18:59 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Thunderbird 2014-06-11 18:54 - 2009-07-14 06:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2014-06-11 17:24 - 2014-05-16 23:59 - 00002828 ____H () C:\Windows\EPMBatch.ept 2014-06-10 00:05 - 2014-05-19 11:30 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\SoftGrid Client 2014-06-09 23:47 - 2014-06-09 23:47 - 00000000 ____D () C:\Users\Public\Foxit Software 2014-06-09 23:47 - 2014-06-09 23:46 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Foxit Software 2014-06-09 23:31 - 2014-06-09 23:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_blockmounter_01_09_00.Wdf 2014-06-09 23:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-06-09 19:57 - 2014-06-09 19:55 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ATViewer 2014-06-09 19:55 - 2014-06-09 19:55 - 00001027 _____ () C:\Users\Public\Desktop\Universal Viewer.lnk 2014-06-09 19:55 - 2014-06-09 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Viewer 2014-06-09 19:36 - 2014-06-09 19:36 - 00001261 _____ () C:\Users\Public\Desktop\EaseUS Partition Master 10.0.lnk 2014-06-09 19:36 - 2014-06-09 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.0 2014-06-09 19:22 - 2013-11-01 21:55 - 00000000 ____D () C:\Program Files\CONEXANT 2014-06-09 19:18 - 2013-11-01 21:54 - 00000000 ____D () C:\Program Files\ThinkPad Some content of TEMP: ==================== C:\Users\Administrator\AppData\Local\Temp\avgnt.exe C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-08 00:20 ==================== End Of Log ============================ --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01 Ran by Administrator at 2014-07-08 18:15:47 Running from D:\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== 2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) 2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden Access Help (HKLM-x32\...\{C6FA39A7-26B1-480A-BC74-6D17531AC222}) (Version: 3.00 - Lenovo) Adobe Flash Player 13 ActiveX (HKLM-x32\...\{1BBE4C53-634B-44B3-8693-314ED6260557}) (Version: 13.0.0.214 - Adobe Systems Incorporated) Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated) Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.3.0 - IObit) Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 6.73.00 - ) Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.5.450 - Avira) Burn.Now 4.5 (x32 Version: 4.5.0 - Corel Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.4852 - CDBurnerXP) CheckDrive (HKLM-x32\...\{B83513EC-2E4D-4621-816D-4CCF397BE702}_is1) (Version: 4.4 - Abelssoft) Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Conexant 20585 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.95.48.50 - Conexant) Corel Burn.Now Lenovo Edition (HKLM-x32\...\InstallShield_{A3BE3F1E-2472-4211-8735-E8239BE49D9F}) (Version: 4.5.0 - Corel Corporation) CPUID CPU-Z 1.68 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) DesktopEarth (HKLM-x32\...\{0E9FA16C-7ADD-4DB9-9DA4-CEAD80A96DA0}) (Version: 3.0.24 - anka.me) Disable AMT Profile Synchronization Pop-up for Windows Vista/7 (HKLM\...\DisableAMTPopup) (Version: 1.00 - ) Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.4 - IObit) EaseUS Partition Master 10.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS) Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.65.2 - Lenovo Group Limited) Free Audio Converter version 5.0.40.514 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.40.514 - DVDVideoSoft Ltd.) Free MP4 Video Converter version 5.0.40.514 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.40.514 - DVDVideoSoft Ltd.) Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.4.530 - DVDVideoSoft Ltd.) Free Torrent Download Beta version 0.0.17.514 (HKLM-x32\...\Free Torrent Download Beta_is1) (Version: 0.0.17.514 - DVDVideoSoft Ltd.) Free Video to MP3 Converter version 5.0.40.514 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.40.514 - DVDVideoSoft Ltd.) Free YouTube Download version 3.2.38.530 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.38.530 - DVDVideoSoft Ltd.) Free YouTube to DVD Converter version 3.1.35.514 (HKLM-x32\...\Free YouTube to DVD Converter_is1) (Version: 3.1.35.514 - DVDVideoSoft Ltd.) Free YouTube to MP3 Converter version 3.12.35.514 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.35.514 - DVDVideoSoft Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden HitmanPro.Alert (HKLM\...\HitmanPro.Alert) (Version: 2.6.5.77 - SurfRight B.V.) Integrated Camera Driver Installer Package Ver.1.1.0.48 (HKLM-x32\...\{C3CD17B4-08B0-492D-8A4C-81716D33E520}) (Version: 1.1.0.48 - RICOH) Intel PROSet Wireless (Version: - ) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.2.50.1050 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2622 - Intel Corporation) Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{CCAFF072-4DDB-4846-963D-15F02A8E9472}) (Version: 13.00.0000 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.186.3 - Intel) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.3.8.2663 - IObit) IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit) Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle) Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden KC Softwares HDDExpert (HKLM-x32\...\KC Softwares HDDExpert_is1) (Version: 1.4.0.6 - KC Softwares) Lenovo Mobile Broadband Activation (HKLM-x32\...\{A95D9DF7-CF34-421A-A1DC-936A49A4DAEA}) (Version: 4.2.1003.00 - Lenovo Group Limited) Lenovo Patch Utility (x32 Version: 1.4.0.4 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - ) Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.8.0 - Lenovo Group Limited) Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - ) Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.06.0007 - Lenovo) Lenovo Welcome (HKLM-x32\...\Lenovo Welcome_is1) (Version: 2.0.020.0 - Lenovo) Lokal TB Jeanie (HKLM-x32\...\Lokal TB Jeanie_is1) (Version: 1.1 - ) Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Message Center Plus (HKLM-x32\...\{FD331A3B-F7A5-4C31-B8D4-DF413C85AF7A}) (Version: 2.0.0012.00 - Lenovo Group Limited) Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Office Click-to-Run 2010 (Version: 14.0.6122.5000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Mobile Broadband Connect (HKLM-x32\...\{9202762E-4B4C-48C9-A6CC-C27F9F85190A}) (Version: 3.5.0010 - Lenovo) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.5.0 - Mozilla) Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla) Mp3tag v2.61a (HKLM-x32\...\Mp3tag) (Version: v2.61a - Florian Heidenreich) MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) PDF To Excel Converter V2.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com) PDF-XChange Editor (HKLM\...\{EFE0213A-660E-45F4-A717-457F839815E2}) (Version: 5.5.308.1 - Tracker Software Products (Canada) Ltd.) Protected Folder (HKLM-x32\...\Protected Folder_is1) (Version: - IObit) Qualcomm Gobi 2000 Package for Lenovo (HKLM-x32\...\{666C9123-1AEC-446F-8AA8-28256B1953D4}) (Version: 1.1.250 - QUALCOMM) Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (HKLM\...\EnablePS) (Version: 1.00 - ) RICOH R5U230 Media Driver ver.2.06.02.02 (HKLM-x32\...\{022CBB38-CEF0-42BA-906A-A49BEFAE0BEE}) (Version: 2.06.02.02 - RICOH) SiSoftware Sandra Lite 2014.SP2a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 20.35.2014.6 - SiSoftware) ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.41 - ) ThinkPad Modem Adapter (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.5.0 - Conexant Systems) ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.13 - ) ThinkPad UltraNav Utility (HKLM-x32\...\{17CBC505-D1AE-459D-B445-3D2000A85842}) (Version: 2.13.0 - Lenovo) ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.21 - Lenovo) ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.79.00.03 - Lenovo) ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo) ThinkVantage Fingerprint Software (HKLM\...\{F58DA859-016E-492D-A588-317D9BB28002}) (Version: 5.9.9.7282 - Authentec Inc.) ThinkVantage GPS (HKLM-x32\...\{6DB21B2C-2BEF-44B4-B264-8EC2BC2369C6}) (Version: 2.81 - Lenovo) Universal Viewer Free Version 5.7.3.0 (HKLM-x32\...\Universal Viewer Free_is1) (Version: 5.7.3.0 - UVViewSoft) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft) UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.1 - Abelssoft) Verizon Wireless Mobile Broadband Self Activation (HKLM-x32\...\{C64A877E-DF8D-4017-AA82-000A77C6D809}) (Version: 3.1.4 - Smith Micro Software, Inc.) VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN) Windows Driver Package - Intel (e1kexpress) Net (12/01/2009 11.5.7.0) (HKLM\...\B65F6B58F0E37352721284FE7F009532B5DF1D2C) (Version: 12/01/2009 11.5.7.0 - Intel) Windows Driver Package - Intel System (06/04/2009 1.0.0.0002) (HKLM\...\E7B58217635B8F723D4744A328A4B3237DB35FA9) (Version: 06/04/2009 1.0.0.0002 - Intel) Windows Driver Package - Intel System (10/28/2009 9.1.1.1022) (HKLM\...\098EBB26BF07167AB12D1575EC24F883F9435E59) (Version: 10/28/2009 9.1.1.1022 - Intel) Windows Driver Package - Intel System (10/28/2009 9.1.1.1022) (HKLM\...\573C3C32A1DB5625CA00E633E584E8A0E6383672) (Version: 10/28/2009 9.1.1.1022 - Intel) Windows Driver Package - Intel USB (08/20/2009 9.1.1.1020) (HKLM\...\A7B0B8D913E4DC2FA0B31E392E1512A901CA66B9) (Version: 08/20/2009 9.1.1.1020 - Intel) Windows Driver Package - Lenovo 1.60.0.4 (11/18/2009 1.60.0.4) (HKLM\...\114EB224AD576F278686036AA9E1EFB7847E3935) (Version: 11/18/2009 1.60.0.4 - Lenovo) Windows Driver Package - Ricoh Company MS Host Controller (10/26/2009 6.10.02.07) (HKLM\...\FD5ED5E16405CDAA5385DE461B9E5379F91ACCCF) (Version: 10/26/2009 6.10.02.07 - Ricoh Company) Windows Live Essentials (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden Windows8FirewallControl (x64) 6.1.9.53 (HKLM\...\Windows8FirewallControl_is1) (Version: 6.1.9.53 - Sphinx Software) WSCC 2.2.1.6 (HKLM-x32\...\WSCC_is1) (Version: - KirySoft) ==================== Restore Points ========================= 07-07-2014 12:39:36 Installed Google Earth. 07-07-2014 18:06:15 Removed Lenovo Warranty Information. ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {035C9681-A656-447F-8916-F2BCE897A4D7} - System32\Tasks\ASC7U_SkipUac_Administrator => C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\ASC.exe Task: {085121C1-D6EE-4A6A-B2CE-0F8466C56C9D} - System32\Tasks\Driver Booster SkipUAC (Administrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-05-09] (IObit) <==== ATTENTION Task: {21790B4C-8EA1-4C0E-9CD9-29C836AE1822} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {2EE84DD1-CA51-4132-A8DC-0816DFD8C39D} - System32\Tasks\TVT\LenovoWERMonitor => C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe [2014-03-14] (Microsoft) Task: {381F89B2-39AE-4E0B-A9A7-BD226A5DE0A1} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo) Task: {3F91079D-1AFC-4276-A04B-0813AC935519} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo) Task: {552B7DED-22BD-4096-8E35-58B8E5808037} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3635339573-733862797-1569816693-500 Task: {60514E4D-A406-49AB-B8EC-CA7020FE8CF6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-13] (Google Inc.) Task: {6FE93D0C-DBD0-45F2-88D2-7A9FEF4B2609} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2014-06-24] (Lenovo Group Limited) Task: {7D2B64AB-0BBA-41AA-A5EF-A831D46D76C2} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\Monitor.exe [2014-05-06] (IObit) Task: {A6893FF5-09B3-4BD7-9C01-99D707ADA768} - System32\Tasks\Abelssoft\CheckDriveBackgroundGuard => C:\Program Files\03 ProgrNEU\CheckDrive\CheckDriveBackgroundGuard.exe Task: {A70AD8D6-C362-48C2-86B3-D3C447C1293A} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2014-04-24] () Task: {B38FB84E-D8B8-46FF-81EF-5218F8694FF4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-15] (Adobe Systems Incorporated) Task: {B4466188-FEC6-4532-846B-80AF2B186D17} - System32\Tasks\ASC7_SkipUac_Administrator => C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\ASC.exe [2014-05-28] (IObit) Task: {B972BEB7-5236-449C-A51D-06ACE58574D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-13] (Google Inc.) Task: {C4237CFE-1379-4BB0-8D4D-F76214473D50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd) Task: {CBA5923B-B584-47DC-AE0C-1A877DA62815} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files\03 ProgrNEU\IObit Uninstaller\IObitUninstaler.exe [2014-06-17] (IObit) Task: {F256D3CA-9DC7-4AAF-950B-A8E04D780AAF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2009-09-22 00:04 - 2009-09-22 00:04 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2012-01-12 12:23 - 2012-01-12 12:23 - 00018432 _____ () C:\Users\Administrator\AppData\LocalLow\WOT\IE\WOTUpdater.exe 2009-05-28 07:09 - 2009-05-28 07:09 - 00049976 _____ () C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe 2013-11-01 21:57 - 2014-06-24 06:05 - 00117760 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL 2014-03-14 17:47 - 2014-03-14 17:47 - 00092504 _____ () C:\Program Files (x86)\Lenovo\Access Connections\AcWrpc.dll 2014-06-24 01:22 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\madExcept_.bpl 2014-06-24 01:22 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\madBasic_.bpl 2014-06-24 01:22 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\madDisAsm_.bpl 2014-06-24 01:22 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\03 ProgrNEU\Advanced SystemCare 7\webres.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll 2014-06-15 19:07 - 2014-06-05 15:58 - 14612296 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== EXE Association (whitelisted) ============= ==================== MSCONFIG/TASK MANAGER disabled items ========= MSCONFIG\startupreg: ACTray => c:\program files (x86)\lenovo\access connections\actray.exe MSCONFIG\startupreg: ACWLIcon => c:\program files (x86)\lenovo\access connections\acwlicon.exe MSCONFIG\startupreg: cssauth => "c:\program files\lenovo\client security solution\cssauth.exe" silent MSCONFIG\startupreg: KeePass Password Safe 2 => d:\007 portable progr\keepass-2.26\keepass.exe MSCONFIG\startupreg: LENOVO.TPKNRRES => c:\program files\lenovo\communications utility\tpknrres.exe MSCONFIG\startupreg: Persistence => c:\windows\system32\igfxpers.exe MSCONFIG\startupreg: PSQLLauncher => MSCONFIG\startupreg: PWMTRV => MSCONFIG\startupreg: RotateImage => c:\program files (x86)\integrated camera driver\x64\rcimgdir.exe MSCONFIG\startupreg: SmartAudio => c:\program files\conexant\saii\saiicpl.exe /t MSCONFIG\startupreg: SynTPEnh => %programfiles%\synaptics\syntp\syntpenh.exe MSCONFIG\startupreg: Windows8FirewallControl => c:\program files\windows8firewallcontrol\windows8firewallcontrol.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== System errors: ============= Error: (07/08/2014 06:05:06 PM) (Source: ipnathlp) (EventID: 31004) (User: ) Description: 0 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2014-07-08 18:12:52.744 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 18:05:03.874 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 17:27:31.569 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 17:16:43.664 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 16:57:58.593 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 16:40:49.328 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 16:31:26.186 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 01:00:30.998 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 00:42:17.742 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-07-08 00:23:53.877 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 60% Total physical RAM: 3891.67 MB Available physical RAM: 1550.46 MB Total Pagefile: 9981.85 MB Available Pagefile: 7071.67 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (Windows7_OS 48,3GB) (Fixed) (Total:48.36 GB) (Free:16.53 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (Daten_19,6GB) (Fixed) (Total:19.65 GB) (Free:9.51 GB) NTFS Drive e: (Auslagerungsdatei 6GB) (Fixed) (Total:6.01 GB) (Free:0.22 GB) NTFS Drive h: (64GB SDCard) (Removable) (Total:59.87 GB) (Free:30.4 GB) NTFS Drive u: (SSD-Clone) (Fixed) (Total:100.01 GB) (Free:48.04 GB) NTFS Drive v: (Daten) (Fixed) (Total:200 GB) (Free:192.02 GB) NTFS Drive w: (Vxxx) (Fixed) (Total:165.72 GB) (Free:98.43 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 75 GB) (Disk ID: DDCD3351) Partition 1: (Active) - (Size=516 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=48 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=6 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 60 GB) (Disk ID: 0D6C8AD8) Partition 1: (Not Active) - (Size=60 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 466 GB) (Disk ID: 8BF1A399) Partition 1: (Not Active) - (Size=100 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=166 GB) - (Type=07 NTFS) ==================== End Of Log ============================ da mein Browser vorhin plötzlich etwas anders aussah hatte ich (voreilig?) AdwareCleaner und Malwarebytes ausgeführt. Von letzterem finde ich keine Logdatei. Falls das ursprüngliche Problem mit dem Browserproblem zusammenhängt, poste ich mal die AdwCleaner Logfiles. Code:
ATTFilter # AdwCleaner v3.214 - Bericht erstellt am 08/07/2014 um 17:30:09 # Aktualisiert 29/06/2014 von Xplode # Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits) # Benutzername : Administrator - WOHER-THINK # Gestartet von : C:\Users\Administrator\Desktop\adwcleaner_3.214.exe # Option : Suchen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Datei Gefunden : C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk Datei Gefunden : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\user.js Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Startfenster.lnk Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster.lnk Datei Gefunden : C:\Users\woher\Favorites\Startfenster.lnk Ordner Gefunden : C:\ProgramData\apn Ordner Gefunden : C:\Users\ADMINI~1\AppData\Local\Temp\OCS Ordner Gefunden : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj Ordner Gefunden : C:\Users\woher\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKCU\Software\OCS Schlüssel Gefunden : [x64] HKCU\Software\OCS Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{50F7F0BE-31BA-4145-BD8B-6B0DECFED804} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DesktopIconAmazon ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17126 -\\ Mozilla Firefox v29.0.1 (de) [ Datei : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\prefs.js ] [ Datei : C:\Users\woher\AppData\Roaming\Mozilla\Firefox\Profiles\wg7lkcut.default\prefs.js ] -\\ Google Chrome v35.0.1916.153 [ Datei : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ] [ Datei : C:\Users\woher\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R2].txt - [3087 octets] - [08/07/2014 17:30:09] ########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [3147 octets] ########## Code:
ATTFilter # AdwCleaner v3.214 - Bericht erstellt am 08/07/2014 um 17:30:09 # Aktualisiert 29/06/2014 von Xplode # Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits) # Benutzername : Administrator - WOHER-THINK # Gestartet von : C:\Users\Administrator\Desktop\adwcleaner_3.214.exe # Option : Suchen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Datei Gefunden : C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk Datei Gefunden : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\user.js Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Startfenster.lnk Datei Gefunden : C:\Users\woher\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster.lnk Datei Gefunden : C:\Users\woher\Favorites\Startfenster.lnk Ordner Gefunden : C:\ProgramData\apn Ordner Gefunden : C:\Users\ADMINI~1\AppData\Local\Temp\OCS Ordner Gefunden : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj Ordner Gefunden : C:\Users\woher\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKCU\Software\OCS Schlüssel Gefunden : [x64] HKCU\Software\OCS Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{50F7F0BE-31BA-4145-BD8B-6B0DECFED804} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DesktopIconAmazon ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17126 -\\ Mozilla Firefox v29.0.1 (de) [ Datei : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0k1d1bwz.default\prefs.js ] [ Datei : C:\Users\woher\AppData\Roaming\Mozilla\Firefox\Profiles\wg7lkcut.default\prefs.js ] -\\ Google Chrome v35.0.1916.153 [ Datei : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ] [ Datei : C:\Users\woher\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R2].txt - [3087 octets] - [08/07/2014 17:30:09] ########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [3147 octets] ########## |
09.07.2014, 09:40 | #8 |
/// TB-Ausbilder | C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden Soviel kann ich dir sagen: Etwas AdWare und viel Schlangenöl Der DriverBooster von IOBits soll ja lt. einigen "Fachmagazinen" ganz ok sein, dazu kann ich erstmal nichts sagen. Hinweis: Registry Cleaner Ich sehe, dass du sogenannte Registry Cleaner installiert hast. In deinem Fall Advanced SystemCare 7. Wir raten von der Verwendung jeglicher Art von Registry Cleaner ab. Der Grund ist ganz einfach: Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Man sollte nicht unnötigerweise an der Registry rumbasteln. Schon ein kleiner Fehler kann gravierende Folgen haben und auch Programme machen manchmal Fehler. Zerstörst du die Registry, zerstörst du Windows. Zudem ist der Nutzen zur Performancesteigerung umstritten und meist kaum im wahrnehmbaren Bereich. Ich würde dir empfehlen, Registry Cleaner nicht weiterhin zu verwenden und über Start --> Systemsteuerung --> Software (bei Windows XP)zu deinstallieren. Und Advanced SystemCare 7 hat auch dein PSI gesperrt: Code:
ATTFilter IFEO\psi.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\psia.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe IFEO\psi_tray.exe: [Debugger] C:\Program Files\03 ProgrNEU\Advanced SystemCare Ultimate 7\AutoReactivator.exe (Nicht nur) MEINE PERSÖNLICHE MEINUNG: Solche Sinnfrei-Produkte zum System tunen/optimieren wie Advanced Systemcare von IOBits oder TuneUp haben nichts auf einem Rechner zu suchen. Für den Rest, sprich AdWare: Bitte lese folgende Anleitung http://www.trojaner-board.de/69886-a...-beachten.html und eröffne unter Plagegeister oder Log-Analyse ein neues Thema und poste die verlangten Logfiles. |
Themen zu C:\Program Files (x86)\Secunia\PSI\psi.exe konnte nicht gefunden werden |
antworten, ausführen, bedeuten, datei, deinstalliert, explorer, fehlermeldung, files, gefunde, heute, installation, installier, klick, konnte, neu, offline, program, programm, programmordner, runtergeladen, secunia, secunia psi, worte |